URL User Request GET HTTP/1.1IP87.120.84.91:222
File typeASCII text, with CRLF line terminators Hash6b22ed654d12d5c96f926a61dd02e655 bd6222f6cca4c5c735106a6deae4ce23b10e0a83 778e5baa7bc831689e38dc2533652cc3a1b8b739962f0fbc98d9543d37c70e95
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cH5.txt HTTP/1.1
Host: 87.120.84.91:222
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 28 Mar 2024 10:52:26 GMT
Server: Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
Last-Modified: Wed, 20 Mar 2024 16:51:41 GMT
ETag: "2fb-6141a67b4e5d5"
Accept-Ranges: bytes
Content-Length: 763
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/plain
|
| 87.120.84.91:222/favicon.ico | 87.120.84.91 | 404 Not Found | 299 B |
URL GET HTTP/1.187.120.84.91:222/favicon.ico IP87.120.84.91:222
Requested byhttp://87.120.84.91:222/cH5.txt
File typeHTML document, ASCII text Hash150a879a9fcbb2f2aa28679b25e1be52 c88c5e0de9d78266098a93f9ae21a926748e69da d40dfe2c09c0ea3d728f732339e76c8e6c64c459dd4d3c2af9b26243921804e1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 87.120.84.91:222
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://87.120.84.91:222/cH5.txt
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 28 Mar 2024 10:52:27 GMT
Server: Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12
Content-Length: 299
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|